We're seeking a Senior DevOps Engineer to design, build, and secure our cloud infrastructure. You'll play a key role in delivering scalable, highly secure systems with a strong focus on Google Cloud and Azure Cloud, Kubernetes, automation, observability, and cloud security best practices.

Responsibilities :

- Design, deploy, and maintain secure and scalable Kubernetes clusters in production.

- Develop and manage Helm charts for deploying applications securely.

- Implement GitOps workflows using ArgoCD, ensuring secure and auditable deployments.

- Set up and manage observability stacks, including Prometheus, Grafana, and Loki, for

monitoring, alerting, and logging.

- Implement security best practices, including network policies, RBAC, pod security standards, and secrets management in Kubernetes.

- Automate infrastructure provisioning and security compliance using Terraform, Ansible, or Pulumi.

- Secure cloud infrastructure and enforce security policies in GCP and Azure, focusing on IAM, encryption, VPC security, and firewall rules.

- Implement CI/CD pipelines with security scanning (SAST, DAST, container image scanning, and dependency management).

- Enhance system reliability, security, and performance through continuous monitoring, auditing, and automated remediation.

- Collaborate with development and security teams to ensure security and compliance in all

DevOps processes.

- Respond to security incidents, conduct forensic analysis, and apply remediation measures.

Requirements :

- 6+ years of experience in DevOps, Site Reliability Engineering (SRE), or Cloud Engineering roles.

- Strong expertise in Kubernetes security, including RBAC, network policies, pod security, and secrets management.

- Hands-on experience with Helm for secure and automated Kubernetes deployments.

- Proficiency in ArgoCD and GitOps methodologies for managing infrastructure as code securely.

- Experience with observability tools such as Prometheus, Grafana, and Loki.

- Expertise in one or more cloud providers (AWS, Azure, or GCP), including IAM, VPC security,

and compliance.

- Strong knowledge of Terraform, Ansible, or Pulumi for infrastructure security automation.

- Experience securing CI/CD pipelines using SAST, DAST, container security scanning (Trivy,

Aqua, or Snyk).

- Proficiency in scripting languages like Bash, Python, or Go for security automation.

- Strong understanding of network security, firewall management, TLS, and certificate

management.

- Experience with logging, security monitoring, SIEM solutions, and automated alerting.

Bonus Points :

- Experience with Service Mesh security (Istio, Linkerd, or Consul).

- Hands-on experience with Zero Trust Security models and policy-as-code frameworks

(OPA/Gatekeeper).

- Knowledge of container runtime security using tools like Falco or Sysdig.

- Familiarity with SOC 2 HIPAA, or other compliance frameworks.

- Experience with incident response, forensic analysis, and security auditing.